How to remove $RBCAQFR.exe

» File
File Details
Overview
Analysis

$RBCAQFR.exe

The module $RBCAQFR.exe has been detected as Adware.Adware

$RBCAQFR.exe

Remove $RBCAQFR.exe

File Details

Main Info:

Product Name:	Nuclear Install
Company Name:	Nuclear Safety Install
MD5:	7d28eacd05a447e90ffc35a9322510db
Size:	4 MB
First Published:	2021-09-12 20:33:34 (3 years ago)
Latest Published:	2021-09-12 20:33:34 (3 years ago)

Analysis:

Status:	Adware.Adware (on last analysis)
Analysis Date:	2021-09-12 20:33:34 (3 years ago)

Overview

Digital Signature

Signed By:	Snowi Tech Inc.
Status:	Valid

Common Places:

%sysdrive%\$recycle.bin

Geography:

100.0%

OS Version:

Windows 7

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x00227611

PE Sections:

Name	Size of data	MD5
.text	2559488	b6485391c5bd2ef8a259ef7917cdd9d0
.rdata	371200	b5b0f7c94bd80f2ce8a952371bc9dd0f
.data	26624	fa5d8a3b953cecb8d8e1f66964a1550c
.gfids	109568	1e614142a97b09271423fe355cc709bb
.giats	512	52f93ebec3bc0c9da8e85ddf5ad812f4
.tls	512	1f354d76203061bfdd5a53dae48d5435
.rsrc	1003008	bdd3e031235ae12d13e9c2248eb9e6e0
.reloc	141824	923032d799569107550523e396e59c43

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for $RBCAQFR.exe

copyright for information about $RBCAQFR.exe